Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b34d6f-66dc-4498-b205-79b6733bc5e6/1/U1lbbSfnBS6eqKOXx1HNFk8MqKQ.roa
File: U1lbbSfnBS6eqKOXx1HNFk8MqKQ.roa (raw, json)
Hash identifier: ucUjn5YZa8saX3jz0YceWTl487YUucnqydKrJ5S6aJY=
Subject key identifier: 53:59:5B:6D:27:E7:05:2E:9E:A8:A3:97:C7:51:CD:16:4F:0C:A8:A4
Certificate issuer: /CN=2f883bd4ea4e3deb28b894b190f8e08baf06f1cc
Certificate serial: 018D59B1F5128C466F99EA601CC84F8F1C0C
Authority key identifier: 2F:88:3B:D4:EA:4E:3D:EB:28:B8:94:B1:90:F8:E0:8B:AF:06:F1:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4g71OpOPesouJSxkPjgi68G8cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b34d6f-66dc-4498-b205-79b6733bc5e6/1/U1lbbSfnBS6eqKOXx1HNFk8MqKQ.roa
Signing time: Tue 30 Jan 2024 09:27:31 +0000
ROA not before: Tue 30 Jan 2024 09:27:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203653
IP address blocks: 185.230.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:b1:f5:12:8c:46:6f:99:ea:60:1c:c8:4f:8f:1c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f883bd4ea4e3deb28b894b190f8e08baf06f1cc
Validity
Not Before: Jan 30 09:27:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53595b6d27e7052e9ea8a397c751cd164f0ca8a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:32:09:40:e3:8c:92:6c:39:54:ed:58:1e:bf:
26:0e:8a:87:9d:c0:68:fe:a1:2e:ff:e4:33:f4:ab:
46:70:9c:26:5f:11:95:34:84:e7:72:a6:b8:a3:50:
76:83:d8:3a:c1:9a:f8:cd:89:9d:00:73:94:ed:4e:
4e:6d:33:96:37:38:2f:89:6a:32:32:86:3d:c3:50:
2c:d3:29:d9:42:16:b5:50:99:26:19:e6:30:65:ef:
90:c5:76:b5:5a:22:87:f7:a5:4c:52:ad:61:38:28:
3c:41:7e:99:73:7a:a4:af:79:8f:ff:2b:45:1e:1f:
fa:e9:52:23:b2:e6:dd:b1:aa:b8:e1:ce:da:6a:af:
ec:92:33:79:d0:23:d5:ae:f6:4a:6b:40:72:40:fa:
f2:eb:36:dd:a5:d8:28:47:67:2b:9b:38:cc:ba:aa:
8f:31:19:2c:e8:76:18:79:f2:1d:75:9a:75:0a:bd:
91:44:ee:61:a9:7b:66:9f:35:42:05:23:52:63:f5:
1d:cc:ed:5a:18:16:a6:e6:75:92:a7:28:14:08:c4:
a8:eb:63:ec:6d:51:5f:d0:12:8b:bb:38:09:4a:30:
e2:c4:69:17:7f:48:6c:b7:90:5a:74:e8:2b:8e:4b:
92:be:58:58:e1:3f:01:4f:14:a7:ae:3a:a9:b4:99:
c1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:59:5B:6D:27:E7:05:2E:9E:A8:A3:97:C7:51:CD:16:4F:0C:A8:A4
X509v3 Authority Key Identifier:
keyid:2F:88:3B:D4:EA:4E:3D:EB:28:B8:94:B1:90:F8:E0:8B:AF:06:F1:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4g71OpOPesouJSxkPjgi68G8cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b34d6f-66dc-4498-b205-79b6733bc5e6/1/U1lbbSfnBS6eqKOXx1HNFk8MqKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b34d6f-66dc-4498-b205-79b6733bc5e6/1/L4g71OpOPesouJSxkPjgi68G8cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.105.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:27:9d:d6:0d:fb:6b:07:2a:cb:34:69:ac:d7:52:f0:92:de:
cf:81:03:dc:ca:da:c6:53:e6:f5:02:1f:55:66:d5:ec:d5:65:
a7:b0:12:07:42:ce:48:3a:42:95:95:f2:ba:43:7a:54:5d:2d:
0f:f8:81:f8:e2:3c:43:45:5f:2d:16:ab:6d:de:48:7d:ae:65:
ca:cf:d7:52:c1:e1:26:f6:dd:ee:78:80:02:ad:ae:ec:e3:60:
16:db:92:ca:c1:6c:75:c1:2a:92:67:5e:aa:fa:a2:45:c1:8c:
90:11:de:da:1c:8c:47:93:fd:fd:e9:cc:68:c3:df:8d:5f:93:
78:10:3f:bb:b3:59:27:c7:a6:27:8e:31:a3:de:03:98:3a:1b:
62:94:cd:a2:73:61:05:9d:2f:20:89:e8:f6:9d:90:c1:55:02:
e3:74:32:40:cc:8f:2e:e7:c7:41:df:0d:80:36:b5:90:8b:ac:
49:11:8d:33:f7:0f:6f:08:93:3a:b5:a0:96:83:f0:c3:f5:b8:
66:e7:1c:b1:f0:02:a0:3e:75:ca:e0:1d:42:2a:e5:3e:c4:55:
e6:29:f8:e8:ff:fa:66:04:8c:d1:94:e0:66:58:a0:2b:6c:e5:
fc:ae:af:bd:ae:ab:9b:ac:7b:ec:2a:c6:f9:01:b1:4b:37:f7:
1a:fc:a6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:33:13 2025 by rpki-client